中國數十萬蘋果裝置或已染病毒

Compared with Android phones or Windows PCs, Apple’s products are relatively impervious to malware, which is what makes WireLurker so interesting.

相對安卓（Android）手機和Windows電腦而言，蘋果的產品不太容易受到惡意軟體的侵襲，這讓本次WireLurker事件關注度頗高。

According to Palo Alto Networks, a California company that sells firewalls to businesses, a new family of malware has been quietly infiltrating OS X and iOS devices for the past six months, gathering information and preparing for some kind of unspecified attack.

據位於加州的企業防火牆公司帕洛阿爾託網路（Palo Alto Networks）稱，在過去六個月中，一種新的惡意軟體悄然侵入了裝有OS X和iOS系統的裝置，這種軟體會蒐集資訊，並籌備某些未明攻擊。

The researchers who discovered the plot called it WireLurker because it can infect even pristine, non-jailbroken iPhones and iPads through computer cables.

發現這種軟體的研究人員將其稱作WireLurker（意為“資料線潛伏者”），因為它可以通過電腦資料線感染甚至是原裝非越獄的iPhone和iPad。

There are no reports of WireLurker infecting Apple devices outside China, and Apple says it has taken steps to prevent that from happening.

目前在中國境外，尚沒有WireLurker感染蘋果（Apple）裝置的報道。蘋果公司表示，已經採取措施阻止該病毒感染蘋果裝置。

“We are aware of malicious software available from a download site aimed at users in China, and we’ve blocked the identified apps to prevent them from launching,” anspokesperson told Fortune. “As always, we recommend that users download and install software from trusted sources.”

蘋果發言人對《財富》（Fortune）表示：“我們正密切關注這種惡意軟體，它來自於某個面向中國使用者的下載站。我們確認並阻止了它的執行。如往常一樣，我們建議使用者從可靠來源下載和安裝軟體。”

The fact that someone found a way to do it has to be troubling news for Apple, which markets itself as the company that protects its users’ privacy and keeps them safe.

有人找到了攻擊蘋果裝置的方法，這對於一直以來宣稱自身能夠保護使用者隱私和安全的蘋果而言，實在是件麻煩事。攻破蘋果的防禦體系並不輕鬆，它還需要中國數十萬部越獄的iOS裝置作為啟動基礎。

Getting through Apple’s defense systems wasn’t easy, and it required the breeding ground of hundreds of millions of jailbroken Chinese iOS devices to get started.

帕洛阿爾託網路公司第42單元的研究人員通過WireLurker追蹤到了中國一家名為“麥芽地（Maiyadi）”的第三方Mac應用商店。根據公司週三釋出的白皮書顯示，那裡流出了467個受到感染的應用，這些應用總共被下載了超過356,104次。也就是說，可能有數十萬使用者已經受到惡意軟體的影響。

Researchers at Palo Alto Network’s PANW 3.50% Unit 42 traced WireLurker to a third-party Mac application store in China called Maiyadi App Store. There it “trojanized” 467 OS X applications, according to a white paper published Wednesday, and those apps were downloaded more than 356,104 times. In all, hundreds of thousands of users may have been affected.

使用者需要更改Mac電腦上的安全設定，並忽略自動彈出的好幾次警告，才能成功下載帶病毒的應用。

To download the infected apps, users would have had to change the security settings on their Macs and ignore several pop-up warnings.

應用一旦安裝成功，就會按照設定好的指令，感染多個移動裝置。

But once installed, the apps could make the leap to devices that followed all the rules.

以下是帕洛阿爾託網路公司釋出的新聞稿：

From Palo Alto Network’s press release:

“如果一臺OS X電腦感染了WireLurker病毒，任何通過USB資料線與該電腦連線的iOS裝置，無論是否越獄，都會被監控並自動安裝下載好的第三方應用或自動生成的惡意應用。這就是為何我們叫它WireLurker（資料線潛伏者）。”

WireLurker monitors any iOS device connected via USB with an infected OS X computer and installs downloaded third-party applications or automatically generated malicious applications onto the device, regardless of whether it is jailbroken. This is the reason we call it ‘wire lurker’…

“WireLurker可以竊取受感染的移動裝置上的多種資訊，還能定期向黑客的指揮和控制服務器傳送升級請求。黑客正在積極地開發這個惡意軟體，其目的尚不明確。”

Security experts have long debated why it is that Apple’s computers were spared the waves of malware that have infected competing systems over the years. Was it because Apple’s systems were inherently more secure? Or because there weren’t enough Macs out there to make an interesting target?

惡意軟體肆虐蘋果競爭對手的系統已有多年，而蘋果電腦卻始終倖免，安全專家對其中緣由爭論已久。是蘋果系統本身就更加安全嗎？還是因為Mac電腦數量太少，黑客沒有興趣攻擊它？

In the post-PC era, with Apple selling hundreds of millions of devices per year, the “security by obscurity” theory may get put to the test.

在後PC時代，蘋果每年都會售出數十萬臺裝置，“被忽視所以安全”的理論將會得到檢驗。

Meanwhile, Palo Alto Networks offers some advice:

與此同時，帕洛阿爾託網路公司提供了一些建議：

o In the OS X System Preferences panel under “Security & Privacy,” ensure “Allow apps downloaded from Mac App Store (or Mac App Store and identified developers)” is set

o 在OS X系統的系統偏好設定裡的“安全與隱私”中，請選擇“僅允許從Mac應用商店下載的應用程式 ”（或“僅允許來自Mac應用商店或來自蘋果認可的開發者的應用程式 ”）

o Do not download and run Mac applications or games from any third-party app store, download site or other untrusted source

o 不要下載和執行來自第三方應用商店、下載站和其他不可信來源的Mac應用及遊戲

o Keep the iOS version on your device up-to-date

o 保證移動裝置上的iOS系統是最新版的

o Do not accept any unknown enterprise provisioning profile unless an authorized, trusted party (e.g. your IT corporate help desk) explicitly instructs you to do so

o 不要接受任何不明企業的配置檔案，除非是獲得授權的可信方（比如貴公司IT部門的幫助中心）明確讓你這麼做

o Do not pair your iOS device with untrusted or unknown computers or devices

o 不要將你的iOS裝置與不受信任或未知的電腦或裝置配對

o Avoid powering your iOS device through chargers from untrusted or unknown sources

o 避免用不受信任或未知來源的充電器給你的iOS裝置充電

o Similarly, avoid connecting iOS devices with untrusted or unknown accessories or computers (Mac or PC)

o 與此類似，避免將你的iOS裝置與不受信任或未知的配件或電腦（Mac或PC機）連線

o Do not jailbreak your iOS device; If you do jailbreak it, only use credible Cydia community sources and avoid the use or storage of sensitive personal information on that device

o 不要給你的iOS裝置越獄。如果你已經越獄，請只使用來自Cydia社群的可靠資源，避免在裝置上儲存敏感的個人資訊